SCMS

Scribe Security releases new platform enhancement supporting SSDF and SLSA compliance to boost software supply chain security

Retrieved on: 
Wednesday, February 15, 2023
Organization, TEL, GitHub, SCMS, NIST, Government, Element, Create, SSDF, Software, Checklist, PS, SDLC, Scribe, Policy, Open Source Security Foundation, IBM PS/1, SLSA, Medical device

TEL AVIV, Israel, Feb. 15, 2023 /PRNewswire/ -- Scribe Security, a software supply chain security solution provider, announced today the release of a new capability within its SaaS Trust Hub designed to help organizations better understand and comply with the NIST SP 800-218 (SSDF) and SLSA frameworks—two emerging standards for software supply chain. Scribe users (currently on GitHub and soon on additional SCMs) can now, not only apply a policy over attestations to ensure secure development and build processes or validate that tampering hasn't taken place,  but also gauge compliance with the SSDF—the basis for the new U.S. cyber regulation and the SLSA framework, developed by Google and adopted by the OpenSSF.

Key Points: 
  • In recent years, high-profile software supply chain attacks have caused significant damage to organizations.
  • These attacks have highlighted the need for better security practices to address the software supply chain risk.
  • Emerging standards such as SSDF and SLSA provide guidance on how to secure the software supply chain.
  • "We conduct a rule-based evaluation to determine the protection level of the source code based on the well-known CIS Software Supply Chain Security benchmark combined with some elements from SLSA."

Supply Chains Suffer Huge Disruptions from Turkey Earthquake Due to Supply Interruptions

Retrieved on: 
Friday, February 10, 2023
SMB, Maersk, Failure, Super Mario, Weather, Iron, Soybean, Structural Damage, Transport, SCMS, 2011 Tōhoku earthquake and tsunami, Distribution (marketing)

“Having a flexible supply chain with multiple suppliers allows companies to weather any threats."

Key Points: 
  • “Having a flexible supply chain with multiple suppliers allows companies to weather any threats."
  • Sources report significant damage to logistics and transport infrastructure from the earthquake that struck Turkey and Syria on Monday.
  • In the paper, Supply Chain Disruptions, Evidence from the Great East Japan Earthquake , the author shows how a natural disaster will cascade through supply chains, resulting in a 3.6 percent decline in the growth rate of firms with affected suppliers.
  • "Having multiple supply sources eliminates the bottlenecks that can occur when a supplier can't deliver a product due to issues like an earthquake or other disruption," adds Polakoff.

BrillDog™ Introduces New Website to Help Educate SMBs on Supply Chain

Retrieved on: 
Tuesday, January 10, 2023
SMB, News, Super Mario, Supply, Supply chain, SCMS, TMS, Retail

NEW FREEDOM, Pa., Jan. 10, 2023 (GLOBE NEWSWIRE) -- BrillDog , the only supply chain technology built for small-to-medium-sized businesses (SMB), announces its brand new website ( www.brilldog.com ) is live, delivering vital information to educate SMBs on supply chain best practices, trends, and challenges.

Key Points: 
  • NEW FREEDOM, Pa., Jan. 10, 2023 (GLOBE NEWSWIRE) -- BrillDog , the only supply chain technology built for small-to-medium-sized businesses (SMB), announces its brand new website ( www.brilldog.com ) is live, delivering vital information to educate SMBs on supply chain best practices, trends, and challenges.
  • "Our new website gives SMBs access to information that will help their business survive and thrive in these perplexing times.
  • By educating SMBs, we hope to strengthen the profitability of these businesses.”
    The BrillDog Supply Chain Management System (SCMS) provides real-time, cloud-based supply chain analysis, management, and actionable insights for SMBs, helping them improve efficiencies, save costs, and transform business outcomes.
  • White papers with helpful hints, such as “8 Tips on How to Mitigate Supply Chain Disruption with Visibility.”

INTEGRITY Security Services Joins CharIN as a Regular Member

Retrieved on: 
Tuesday, January 10, 2023
Combined, Ecosystem, Communication, Combined Charging System, CONFIG.SYS, EV, American Institute of Certified Public Accountants, AU, ISS, Aircraft, CCS, Certificate Management Protocol, PNC, SCMS, EVS, Entrepreneurship, CSS, GM, Plug, Jarin

SANTA BARBARA, Calif., Jan. 10, 2023 /PRNewswire/ -- INTEGRITY Security Services (ISS) today announces that it has joined the CharIN Association as a regular member.

Key Points: 
  • SANTA BARBARA, Calif., Jan. 10, 2023 /PRNewswire/ -- INTEGRITY Security Services (ISS) today announces that it has joined the CharIN Association as a regular member.
  • ISS Security Credential Management System (SCMS) provides electronic vehicles and the ecosystem Plug and Charge digital certificates from its high assurance SCMS.
  • "We are very excited for ISS to join the CharIN Consortium," says David Sequino, Co-Founder and President of INTEGRITY Security Services.
  • "ISS is pleased to join CharIN and help its members ensure that the Combined Charging System (CSS) is secure and trusted," says Brian Romansky, GM, Connected Vehicle Solutions at INTEGRITY Security Services.

INTEGRITY Security Services and SaeSol Tech Announce a Strategic Partnership to Deliver Connected and Autonomous Vehicle (CAV) Security

Retrieved on: 
Wednesday, January 4, 2023
DOT, Connected, CMS, Certificate Management Protocol, DLM, 2600-series (CTA), Entrepreneurship, SCMS, RSU, Aircraft, Intellectual property, GM, ECU, SST, Partnership, Electronics, DSRC, LG Electronics, USDOT, Multimedia, V2X, AU, Original equipment manufacturer, ISS, Build automation, American Institute of Certified Public Accountants, Aircraft pilot, Renewable energy, Online shopping

SANTA BARBARA, Calif., Jan. 4, 2023 /PRNewswire/ -- INTEGRITY Security Services (ISS) today announces that it has entered into a partnership with SaeSol Tech (SST) to deliver industry-leading security technology to automotive manufacturers to protect Connected and Autonomous Vehicles.

Key Points: 
  • SANTA BARBARA, Calif., Jan. 4, 2023 /PRNewswire/ -- INTEGRITY Security Services (ISS) today announces that it has entered into a partnership with SaeSol Tech (SST) to deliver industry-leading security technology to automotive manufacturers to protect Connected and Autonomous Vehicles.
  • "I'm very pleased to announce the partnership with INTEGRITY Security Services.
  • "This technology is a key enabler for widescale connected and autonomous vehicle production," says Brian Romansky, GM for Connected Vehicle Solutions at ISS.
  • LG Electronics has invested in SaeSol Tech Inc., and is a Technology Cooperation Partner with SaeSol Tech Inc.
    Green Hills, the Green Hills logo, INTEGRITY Security Services, the INTEGRITY Security Services logo, and INTEGRITY are trademarks or registered trademarks of Green Hills Software LLC and/or INTEGRITY Security Services LLC in the US and/or internationally.

AUTOCRYPT Accredited by WebTrust for CAs as V2X Root Certificate Authority

Retrieved on: 
Wednesday, December 7, 2022
PKI, Accreditation, Certificate, SCMS, Certification Practice Statement, IMS, Cooperative, Asset integrity management systems, CPS, V2X, PNC, AICPA, Original equipment manufacturer, American Institute of Certified Public Accountants, CAS, Certification, OBU, Organization, Medical device, Online shopping

SEOUL, South Korea, Dec. 7, 2022 /PRNewswire/ --AUTOCRYPT, an industry-leading provider of automotive cybersecurity and connected mobility solutions, announced that it has been officially accredited by the AICPA/CICA WebTrust Program for CAs (Certification Authorities) as a root certificate authority for the V2X-PKI ecosystem, making it Asia's first, and the world's third V2X root CA to receive the WebTrust seal.

Key Points: 
  • SEOUL, South Korea, Dec. 7, 2022 /PRNewswire/ --AUTOCRYPT, an industry-leading provider of automotive cybersecurity and connected mobility solutions, announced that it has been officially accredited by the AICPA/CICA WebTrust Program for CAs (Certification Authorities) as a root certificate authority for the V2X-PKI ecosystem, making it Asia's first, and the world's third V2X root CA to receive the WebTrust seal.
  • The WebTrust seal is an internationally recognized symbol for safe practice in PKI and cryptography, to which many organizations demand WebTrust accreditation for all CAs involved in their supply chains.
  • AUTOCRYPT's V2X-PKI CA (Certificate Authorization) Service acts as a root CA that registers, issues, manages, and revokes V2X certificates to subordinate CAs, supporting SCMS standards across North America, Europe, and China.
  • "By providing WebTrust-accredited certificate lifecycle management for V2X CAs, we look forward to enabling a streamlined V2X deployment process for our clients and partners, as well as encouraging more V2X implementations across a wider variety of use cases."

AUTOCRYPT Accredited by WebTrust for CAs as V2X Root Certificate Authority

Retrieved on: 
Wednesday, December 7, 2022
PKI, Accreditation, Certificate, SCMS, Certification Practice Statement, IMS, Cooperative, Asset integrity management systems, CPS, V2X, PNC, AICPA, Original equipment manufacturer, American Institute of Certified Public Accountants, CAS, Certification, OBU, Organization, Medical device

SEOUL, South Korea, Dec. 7, 2022 /PRNewswire/ --AUTOCRYPT, an industry-leading provider of automotive cybersecurity and connected mobility solutions, announced that it has been officially accredited by the AICPA/CICA WebTrust Program for CAs (Certification Authorities) as a root certificate authority for the V2X-PKI ecosystem, making it Asia's first, and the world's third V2X root CA to receive the WebTrust seal.

Key Points: 
  • SEOUL, South Korea, Dec. 7, 2022 /PRNewswire/ --AUTOCRYPT, an industry-leading provider of automotive cybersecurity and connected mobility solutions, announced that it has been officially accredited by the AICPA/CICA WebTrust Program for CAs (Certification Authorities) as a root certificate authority for the V2X-PKI ecosystem, making it Asia's first, and the world's third V2X root CA to receive the WebTrust seal.
  • The WebTrust seal is an internationally recognized symbol for safe practice in PKI and cryptography, to which many organizations demand WebTrust accreditation for all CAs involved in their supply chains.
  • AUTOCRYPT's V2X-PKI CA (Certificate Authorization) Service acts as a root CA that registers, issues, manages, and revokes V2X certificates to subordinate CAs, supporting SCMS standards across North America, Europe, and China.
  • "By providing WebTrust-accredited certificate lifecycle management for V2X CAs, we look forward to enabling a streamlined V2X deployment process for our clients and partners, as well as encouraging more V2X implementations across a wider variety of use cases."

Global Nano Silica Market Report to 2031 - Featuring Evonik, AkzoNobel, Cabot and Nanopore Among Others - ResearchAndMarkets.com

Retrieved on: 
Thursday, November 3, 2022
Other Construction & Property, Chemicals, Plastics, Construction & Property, Manufacturing, Growth, Nano, Porter's five forces analysis, Particle size, CAGR, Industry, Nanoparticle, Vaccine, Construction, Rubber industry in Malaysia, SCMS, Toxicity, Adsorption, Benchmarking, Lithium, Sintering, Cement

The global nano silica market was valued at $4.6 billion in 2021, and is projected to reach $8.6 billion by 2031, growing at a CAGR of 6.5% from 2022 to 2031.

Key Points: 
  • The global nano silica market was valued at $4.6 billion in 2021, and is projected to reach $8.6 billion by 2031, growing at a CAGR of 6.5% from 2022 to 2031.
  • However, toxicity of silica fumes is expected to hamper the growth of the nano silica market during the forecast period.
  • This report provides a quantitative analysis of the market segments, current trends, estimations, and dynamics of the nano silica market analysis from 2021 to 2031 to identify the prevailing nano silica market opportunities.
  • The report includes the analysis of the regional as well as global nano silica market trends, key players, market segments, application areas, and market growth strategies.

BrillDog Adds Frank DeSantis as Chief Operating Officer

Retrieved on: 
Tuesday, November 1, 2022
Marketing, Growth, CEO, Founder, Towson University, GLOBE, SCMS, SMB, Industry, COO, BS, John Chambers College of Business and Economics, Business, VP, Technology, College, Strategic planning, Stanley Black, CBE, Advisory board, Stanley Black & Decker, Management, Economics

NEW FREEDOM, Pa., Nov. 01, 2022 (GLOBE NEWSWIRE) -- BrillDog , the only supply chain technology built for small-to-medium-sized businesses (SMB), announces the addition of Frank DeSantis as Chief Operating Officer (COO).

Key Points: 
  • NEW FREEDOM, Pa., Nov. 01, 2022 (GLOBE NEWSWIRE) -- BrillDog , the only supply chain technology built for small-to-medium-sized businesses (SMB), announces the addition of Frank DeSantis as Chief Operating Officer (COO).
  • Frank is an accomplished transformation leader with over twenty-three years of experience in sales and marketing management who will play a pivotal role in accelerating the growth of BrillDog, says Sam Polakoff, CEO and Founder of BrillDog.
  • "I look forward to the opportunity to provide significant value to small and medium-sized enterprises with their supply chain needs," says Frank DeSantis, Chief Operating Officer at BrillDog.
  • BrillDog is the supply chain management system (SCMS) built specifically for small-to-medium-sized businesses and created by people who understand the supply chain needs of the SMB shipper, adds Polakoff.

Legit Security Launches Open-Source Security Product to Enforce and Scale Secure GitHub Configurations

Retrieved on: 
Wednesday, October 5, 2022
Risk, Linux, Software as a service, Organization, SCM, Legit, SDLC, Version control, GitHub, Blog, DevOps, GLOBE, TEL, SCMS, Heart, Disclosure, Linux Foundation, OpenSSL, Documentation, Medical device, Medical imaging, Online shopping, Legitimation

TEL AVIV, Israel, Oct. 05, 2022 (GLOBE NEWSWIRE) -- Legit Security , a cyber security company with an enterprise platform to secure an organizations software supply chain, today announced Legitify, an open-source security tool to secure GitHub implementations.

Key Points: 
  • TEL AVIV, Israel, Oct. 05, 2022 (GLOBE NEWSWIRE) -- Legit Security , a cyber security company with an enterprise platform to secure an organizations software supply chain, today announced Legitify, an open-source security tool to secure GitHub implementations.
  • Legitify is a GitHub misconfiguration scanner that helps security teams and DevOps engineers manage and enforce their GitHub configurations in a secure and scalable way.
  • Legitify addresses these challenges and helps automate GitHub security by allowing companies to securely and efficiently:
    Scan GitHub implementations via the command line to detect various security issues associated with GitHub configurations and settings.
  • In addition to Legitify , Legit Security has contributed to the cyber security community with the responsible disclosure of other GitHub vulnerabilities discovered by their internal security research team.